role is a group of users to which you assign applications.
You can use roles to assign groups from Active Directory in App Controller.
After you add Active Directory groups to a role, you then assign applications
to the role. The basic steps for adding a role in App Controller are as
- Assign a name to the role.
- Provide a description for
- Select one or more groups
that exist within the domain you chose and add them to the role.
If users are members of multiple groups, you can choose if users
must be members of all of the defined groups or if users can belong to some of
the groups. For example, you have JohnD in the Sales, Finance, and Marketing
Groups. To access apps and data, you can require JohnD to be a member of all
three groups. You can also allow JohnD to be a member of any of the groups to
gain access to apps and data.
- Select the ShareFile
Storage Zone to which users have access.
You can assign web, SaaS, and mobile applications to a role. You can
also assign web links to a role and add roles to ShareFile settings.
Note: You must configure Roles before you configure ShareFile settings.
You cannot use the AllUsers role for ShareFile.
After you configure roles, you configure the applications for single
sign-on (SSO). You can then assign one or more applications to the roles. For
example, you configure Sales, Marketing, and Finance roles in App Controller.
After you configure the Salesforce and GoToMeeting application connectors, you
might assign the Salesforce application to the Sales role and you might assign
GoToMeeting to all three roles.
When you add a role,
you assign one or more Active Directory domain or groups to the role. For
example, you have two domains: mydepartment and financedepartment. You want to
add groups from each domain to the role. App Controller shows the domain and
groups on the
Membership page in the
Role dialog box as shown in the following figure:
You must have an
active connection from App Controller to Active Directory to add a role. After
you add domains and groups to the role, you then assign applications to the
Note: You can only use
Apps to Role
link on the
Roles tab when you create a role. You can also
assign an app to a role by using the Configure App
When you configure a
role and add multiple Active Directory groups, you can require users to be a
member of all groups or you can require membership in at least one of the
When you delete a
role, the role is removed from App Controller. If you need the role again, you
need to configure a new role.